If you as a researcher or a student carry out a project that processes personal data, you do so on behalf of HINN, which is responsible for that data processing. This includes that if you realize that you have data (personal information) that has gone astray or been lost, you must immediately notify this via a supervisor who will forward it to the nearest manager. The contact persons listed on this website are helpful in channeling the alert.
What is a security breach
- Unauthorized persons gain access to information worthy of protection (= confidentiality).
- Information and systems are altered, damaged or deleted in unauthorized or unintentional ways (= integrity).
- Information and systems are lost or unavailable when the need is there (= availability).
Examples of security breaches that you must report:
- erroneous delivery or publication
- lost equipment (mobile, laptop, tablet, notes and the like)
- faults in access, equipment or software that could impair security
- routines that are missing, do not work, or are not followed
- suspected hacking
- lost / stolen password
In addition, as a system owner and treatment manager, HINN can on its own detect security breaches that concern research and student work.